Anomaly Detection for System Log Analysis using Machine Learning: Recent Approaches, Challenges and Opportunities in Network Forensics

Farashazillah Yahya and Nurul Huda Nik Zulkifli and Hasimi Sallehudin and Nur Azaliah Abu Bakar (2020) Anomaly Detection for System Log Analysis using Machine Learning: Recent Approaches, Challenges and Opportunities in Network Forensics. International Journal of Advanced Science and Technology, 29 (3). 12115 -12125. ISSN 2005-4238

[img]
Preview
Text
Anomaly Detection for System Log Analysis using Machine Learning Recent Approaches, Challenges and Opportunities in Network Forensics.pdf

Download (43kB) | Preview
[img] Text
Anomaly Detection for System Log Analysis using Machine Learning Recent Approaches, Challenges and Opportunities in Network Forensics.pdf
Restricted to Registered users only

Download (43kB)

Abstract

Anomaly detection identifies unusual patterns or items in a dataset. The anomalies identified for system logs will signify critical points to help debug system failures and perform root cause analysis. Various system logs are crucial sources to uncover meaningful information on a system condition. Typically, system administrators do manual review using keyword search or rule matching. However, the size of the logs keeps increasing making it a difficult and time-consuming effort to be undertaken manually. Machine learning has been widely used for anomaly detections. In this paper, we reviewed several anomaly detections for system logs using machine learning and discuss emerging research challenges and the opportunities raised from the challenges for network forensics. This paper presents the current research landscape in the area of machine learning and network forensics. It may be beneficial for references to researchers exploring the stated topics.

Item Type: Article
Uncontrolled Keywords: Anomaly detection, deep learning, log analysis, machine learning, system log
Subjects: Q Science > Q Science (General)
Q Science > QA Mathematics
Divisions: FACULTY > Faculty of Computing and Informatics
Depositing User: SITI AZIZAH BINTI IDRIS -
Date Deposited: 19 Nov 2020 08:26
Last Modified: 15 Mar 2021 02:10
URI: http://eprints.ums.edu.my/id/eprint/26318

Actions (login required)

View Item View Item